REPLACEMENT SHEET 



134 



NIS/DS 



ADMINISTRATION 
SERVER 



130 




REPLACEMENT SHEET 



204 



START J 



200 



NEW USER ISSUED SMART CARD 



208 



NEW USER ISSUED USER NAME AND PASSWORD — ' 



FIG. 2 




212 



234 



USER CONNECTS SMART CARD, 
ENTERS ID AND PASSWORD 



NORMAL 
OPERATION - 

LOGIN BY 
CONNECTING 
S MART CARD 
^230 



238 



AUTHENTICATE TO NETWORK ADMINISTRATION SERVER 




WORKSTATION REQUESTS KEY PAIR (PUBLIC AND 
PRIVATE) GENERATION FROM SMART CARD AND SENDS 
PUBLIC KEY TO ADMINISTRATION SERVER 



CERTIFICATE AUTHORITY CREATES DIGITAL CERTIFICATE 
USING PUBLIC KEY AND INFORMATION FROM NIS/DS AND 
SENDS TO WORKSTATION 



260 



DIGITAL CERTIFICATE STORED - SMART CARD IS 

ACTIVATED 



266 



, — f RETURN ^V- 
270 ^- ' 



REPLACEMENT SHEET 



134 



NIS/DS 



CERTIFICATE 
AUTHORITY 



ADMINISTRATION 




SERVER 






i 






f 



132 



140 



NETWORK 



126 



120 



[ 



WORKSTATION 



FIG. 3 



114 



J 

\ 


f 




SMART CARD 
READER 




SMART 
CARD 





300 



110 



REPLACEMENT SHEET 



FIG. 4 

WORKSTATION REQUESTS KEY PAIR (PUBLIC AND 
PRIVATE) GENERATION FROM SMART CARD AND SENDS 
PUBLIC KEY TO ADMINISTRATION SERVER 



XT 



454 



ADMINISTRATION SERVER REQUESTS CERTIFICATE FROM 
CERTIFICATE AUTHORITY 



458 



CERTIFICATE AUTHORITY CREATES DIGITAL CERTIFICATE 

USING PUBLIC KEY AND INFORMATION SUPPLIED BY 
ADMINISTRATION SERVER FROM NIS/DS AND SENDS TO 

WORKSTATION 



460 



DIGITAL CERTIFICATE STORED - SMART CARD IS 
ACTIVATED 

270 ^— v ^~ 266 

^-T RETURN J 



SMART CARD LOGIN OPTIONS: 



500 



0 SMART CARD ONLY 

□ SMART CARD PLUS PIN 

□ SMART CARD PLUS PASSWORD 

□ SMART CARD PLUS ID AND PASSWORD 



FIG. 5 



REPLACEMENT SHEET 



230 




616 



WORKSTATION / SMART CARD 
INITIATES LOGIN 



AUTHENTICATE TO NETWORK 
ADMINISTRATION SERVER 



VERIFY CERTIFICATE NOT 
REVOKED 



648 



620 



640 




REJECT 
LOGIN 



660 



AUTHORIZE 
LOGIN 



668 



Q RETURN 



F/G. 6 



